JP2000511385A - Operation and maintenance system for mobile wireless networks - Google Patents

Abstract

(57) Abstract: An operation and maintenance system for a mobile radio network, wherein the network configuration is performed centrally by a maintenance device (OMT) of an operation and maintenance center (OMC) and in a peripheral region an LMT maintenance device (OMT). LMT, LMTr), and the LMT maintenance devices (LMT, LMTr) are connected to network devices (BSC, BTSE, TRAU) of the base station subsystem of the mobile radio network. For each operator permitted to access the operation and maintenance system by the LMT maintenance device (LMT, LMTr), an operator data set having a name entry is accessed by the operator via the LMT maintenance device (LMT, LMTr). It contains information about the specific operator password used for this purpose and the degree of access rights of the operator. The LMT access table (TB) is stored in the operation and maintenance center (OMC). Operation and maintenance center for the management of the LMT access table (TB) and for the activation of the non-volatile storage of at least a part of each of the LMT access table (TB) in the network equipment (BSC, BTSE, TRAU) of the base station subsystem The base station subsystem is required for access by the LMT maintenance devices (LMT, LMTr) via this network device (BSC, BTSE, TRAU).

Description

The invention relates to an operation and maintenance system for a mobile radio network according to the preamble of claim 1. A mobile radio network is a hierarchically structured system of various network elements, where the lowest hierarchical level is formed by mobile telephones. These mobile phones are called "Mobile Station" MS in English. This mobile telephone communicates with the radio base station forming the next hierarchical level via a so-called switching or radio interface. This wireless base station is also called a base station, and is also called "Base Transceiver Station Equipment" BT SE in English. Based on the relatively small radio range of such base stations, a normally sized mobile radio network includes a very large number of base stations. These base stations are concentrated in an area for routing and controlling data traffic between the base stations. An upper network element provided for this purpose is called a base station controller or a “Base Station Controller” BSC in English. The base station communicates with the base station controller via the so-called Abis interface. In some cases, a transcoder and a rate adapter unit are assigned to the base station control unit to optimize data communication. This transcoder and rate adapter unit is called "Transcoder and Rate Adapter Unit" TRAU in English. The base station, base station controller and transcoder and rate adapter unit form the base station subsystem of the mobile radio network. This mobile radio network is called "Base Station Subsystem" BSS in English. The base station, base station controller and transcoder and rate adapter unit are in this case network devices of the base station subsystem. The base station controller communicates with one or several mobile repeaters via a so-called A interface. These mobile repeaters are referred to in English as "Mobile Switching Centers" MSCs, via which the transfer to other mobile telephone networks takes place, among other things. The mobile relay device forms a relay subsystem with several data banks, and this relay subsystem is also called "Network Switching Subsystem" NSS in English. In addition to the network element hierarchy described so far, the operation and maintenance system, called "Operation and Maintenance Subsystem" OMS in English. This operation and maintenance system is used for configuration and monitoring of all network elements. The monitoring means and the configuration means are for this purpose usually controlled remotely from the operations and maintenance center. The operation and maintenance center is called an “Operation and Maintenance Center” OMC in English, and usually exists in the area of the mobile relay device. The challenge of this operation and maintenance system is the implementation of configuration management. This configuration management, also referred to in English as "Configuration Management" CM, represents one of five management functional areas that identify the telecommunications management network principle. This configuration management defines a series of services, which allow the structure to be changed, that is to say the operator to change the characteristics of the telecommunications network. These services always operate on managed objects. instance is connected with. These objects together form a network-specific management information base MIB. In principle, configuration management of a mobile radio network is performed from two aspects. That is, a workstation in the central operation and maintenance center, which is called an operation and maintenance device or "Operation and Maintenance Terminal" OMT in English, or operated by a maintenance device in the area around the network. Will be This maintenance device is called "Local Maintenance Terminal" LMT in English, and is further connected to a network device of a base station subsystem via a so-called T interface, ie, to a base station or a base station control unit, or to a transcoder and a rate adapter. Connected to the unit. In this case, the plurality of LMT maintenance devices are simultaneously connected to various network devices. The LMT maintenance device connected to the network device is operated in two different modes of operation in this case to change the instance associated with the function of the managed object. When the LMT maintenance device is directly connected to the base station, the base station control unit or the transcoder and the rate adapter unit, the LMT maintenance device operates in a normal mode, in which the LMT maintenance device is directly connected to a corresponding network. Act on the device. When the LMT maintenance device is connected to a base station or a transcoder and a rate adapter unit, the LMT maintenance device is operated in a base station control unit remote control mode, and acts remotely on an associated base station control unit. In these two configurations, the LMT maintenance device is logically connected to the base station controller. Objects managed in terms of configuration management are logical abstractions of the resources of the mobile radio network. In this case, a distinction is made between hardware-related managed objects that describe the implementation of manufacturer-specific functions, and between managed objects that are related to functions that are each an abstraction of a manufacturer-independent function. Is distinguished. Managed objects associated with the hardware are configured via the LMT maintenance device operating in normal mode, ie in local mode, connected to the base station or transcoder and rate adapter unit. Within the framework of configuration management, a plurality of independently working operators of the operation and maintenance equipment of the operation and maintenance center and operators of the LMT maintenance equipment connected to the periphery are simultaneously operated in the form of a configuration process by the mobile radio network. Configuration can be changed. In this case, the configuration process is usually started by the command "Start Configuration", which is sent by the operation and maintenance device or the LMT maintenance device, and usually such a configuration process is It is terminated by the command "End Configuration", in which case all configuration changes are entered. The started configuration process is interrupted by the command "Abort Configuration", in which case the configuration changes made are discarded. The operation and maintenance center controls the management of operator access to the mobile wireless network via the operation and maintenance center by a security mechanism. This security mechanism is implemented at the central monitoring computer based on so-called authentication and authorization checks, ie by user identification and entitlement. Therefore, management of user access is guaranteed through the operation and maintenance center. With LMT access, ie configuration access via a local maintenance device connected to any network device of the base station subsystem, the operator can perform the same configuration method as access via the operation and maintenance center. For access to the operation and maintenance system of the mobile radio network via such an LMT, an operator identification operation and a maintenance home in-refresh check are often performed only inside the LMT. This allows an operator who knows the LMT local password to illegally operate the entire mobile wireless network. An object of the present invention is to provide an operation and maintenance system that can better manage operator access through a maintenance device connected to a peripheral part. The above object is achieved by a configuration according to the characterizing portion of claim 1. According to the present invention, the operation and maintenance system of the present invention has an LMT access table stored in the operation and maintenance center, and the LMT access table is provided with each of the LMT maintenance devices permitted to access the operation and maintenance system by the LMT maintenance device. An operator data set having a name entry for the operator, a unique operator password used by the operator to access through the LMT maintenance device, and information regarding the degree of access rights of the operator. In addition, such an operation and maintenance system comprises a control at the operation and maintenance center for the management of the LMT access table and for the activation of the non-volatile storage of at least each part of the LMT access table in the network equipment of the base station subsystem. The base station subsystem is required for access by the LMT maintenance device via this network device. Such an operation and maintenance system ensures that the management of data important for LMT access takes place centrally for all mobile radio networks in an operation and maintenance center. Despite this, the inspection of security-relevant data on access via the LMT maintenance device can be performed quickly and in situ, i.e. in a network device which must be accessed via this network device or in this network device. This is possible in the base station controller in charge of the device. Because there is an operator data set with a name entry in each network device for the entitled operator, this operator data set allows for password management of this operator and furthermore for the access rights of this operator. This is because information about the degree is included. In an advantageous embodiment of the operation and maintenance system according to the invention, the LMT access table stored and managed in the operation and maintenance center consists of a plurality of table parts, ie having an operator data set for LMT access via the base station control. It consists of a BSC table part, a BTSE table part with operator data set for LMT access via base station and a TRAU table part with operator data set for LMT access via transcoder and rate adapter equipment. Thus, for each operator, an operator data set exists in the corresponding table portion depending on the access rights of each operator. Thus, the operator entitled to access the mobile radio network by the LMT maintenance device via the base station and via the base station controller and via the transcoder and the rate adapter device can be used by the BSC table partial data set, BTSE It has a table partial data set and a TRAU table partial data set. The division of the LMT access table of the operation and maintenance center transmits the operator data sets required for access via this network device respectively to the individual network devices and further simplifies the storage in this network device. . Thereby, in the embodiment of the present invention, the control unit of the operation and maintenance center activates the non-volatile storage of the BSC table portion of the LMT access table in the base station control unit of the base station subsystem, and further stores the LMT access table in the base station. Activate the non-volatile storage of the BTSE table portion and activate the non-volatile storage of the TRAU table portion of the LMT access table in the transcoder and the rate adapter device. In an embodiment of this aspect of the invention, the control of the operation and maintenance center activates the non-volatile storage of the BTSE table portion and the TRAU table portion of the LTM access table in the base station control of the base station subsystem. Due to the storage of the BTSE table part and the TRAU table part in the base station controller, local updates of the LMT access table part entries in the transcoder and the data equipment or in the base station can be made instantaneous availability of the operation and maintenance center if necessary. It is possible without depending on. Further, in a modification of the method of the present invention, if the base station controller activates the storage of a unique table portion in the network device connected thereto, the control unit of the operation and maintenance center may execute the operation in the base station controller. It is sufficient to activate the non-volatile storage of all table parts of the LMT access table. In an advantageous embodiment of the operation and maintenance system according to the invention, the operator passwords are respectively stored encrypted in the LMT access table. In an embodiment of this aspect of the operation and maintenance system of the present invention, the network device is adapted to encrypt an operator password entered unencrypted by the operator and an operator password stored in an encrypted LMT access table. And a control unit for comparing the encryption result with the encryption result, and can be accessed by the LMT maintenance device via the network device. This prevents the need to store unencrypted operator passwords inside the mobile wireless network. Therefore, eavesdropping on the operator password is possible only by directly stealing while the operator password is input in plain text. In an embodiment of the operation and maintenance system of the present invention, the network device includes a control unit for encrypting the operator password received in the clear by the LMT maintenance device, and further encrypting and transmitting the encrypted operator password to the base station control unit. The LMT maintenance device operated in the base station control unit remote control mode via the device allows the operator to access the device while configuring by entering his / her operator password. This measure makes the eavesdropping of the operator password additionally difficult in this particular application. In an advantageous embodiment of the operation and maintenance system of the invention, the control of the operation and maintenance center forms a hash function from confidential information and from operator information entered in clear text and from identity information including the operator's name. To generate an encrypted operator password stored in the LMT access table. For example, forming a hash function from secret information unique to the network element type and from identity information including the operator's name and from an operator password entered in the clear will result in an encrypted operator password. From this encrypted operator password, it is not possible to find the operator password entered in plaintext by decryption. For example, the secret information may be 64 bits long, the operator password is up to 128 bits, and the identity information is also up to 128 bits. The hash function MD5 (T. I. If S) is calculated, from which the first 64 bits of the encryption result are used as the operator password for the LMT access table, decryption is not possible. If the secrets used to form the hash function are each specific to a network device type, then the same operator password will result in different operator passwords being encrypted and stored for different table parts of the LMT access table. Can be If the stored operator password is encrypted in the manner described above, embodiments of the present invention include from the secret information specific to the network device type and from the operator password entered in clear text and including the operator's name. It is recommended to configure the control of the network device to encrypt the operator password entered in clear text by forming a hash function from the identity information. To enable the network device to start operating if the LMT access table or portions of such an access table are not stored in the network device, each network device has an installation password and a degree of access right. A memory with information is provided, this access right allowing the operator to enter the few configuration commands required to start operation of the network device. In this case, when starting the operation of the network device, the operator logs in with the installation password, not with the operator's unique identity and the operator's password, and obtains the access right required for the operation start from the access control mechanism. In an embodiment of the operation and maintenance system of the present invention, an operation and maintenance center controller for managing tables of all base station controllers is provided, and an LMT access table caused by an update in all base station controllers is provided. The operation and maintenance center does not carry out the corresponding storage process if there is an obstruction since the activation of at least a part of the non-volatile storage and further activates this storage process if it is determined that the obstruction has disappeared. Control unit. For each change of security-related data for LMT access, such as a change by the security operator at the operation and maintenance center or a password change by the LMT operator itself, the LMT access table for this change must be updated in all network equipment instances. Must. The above embodiment ensures that the LMT access tables of all base station controllers are updated. Further, the tables of all other network devices for which the LMT access table has not been updated are also stored and managed in the operation and maintenance center. However, in a particularly advantageous embodiment of the above inventive idea, the base station control comprises a control for managing the tables of all base stations and transcoders and rate adapter devices assigned to the table, respectively. Provided in all base stations and transcoders and rate adapter devices assigned to this table, if there is a disturbance since the activation of the non-volatile storage of at least a part of the LMT access table due to the update, the corresponding storage A control unit of the base station control unit is provided for activating the storage process when it is determined that the jamming has been eliminated without performing the process. The availability of a connection to a network device, ie a base station or a transcoder and a rate adapter device, or the availability of a network device in a network, need only be checked at the periphery by the assigned base station control. . Furthermore, it is sufficient if a communication connection between the base station controller and the network device is provided. The communication connection to the operation and maintenance center need not be simultaneously available in this case. In another advantageous embodiment of the operation and maintenance system of the present invention, at least a part of the LMT access table stored in the base station control is provided by a security operator which is used for access via the LMT maintenance device by a specific security. Includes a special security operator data set with information on passwords and degree of access rights, which provides access to the LMT access table operator data set inside the base station subsystem even during network operation without an operation and maintenance center. To make it possible. The operator password that enables LMT access must always be unique across the network. Therefore, the operator password of the operator is changed by the operator by the LMT maintenance device via the network device, and the network device operates in a non-volatile storage of the changed operator password in the LMT access table of the network device. And a control unit for preventing access by the changed operator password until performed when the maintenance center is started. In a particularly advantageous embodiment of the operation and maintenance system of the invention, the information on the degree of access rights of each operator is based on the rights individually set by the security operator, of the type of access to the individual classes of the managed objects. It is stored in the form of rights profile criteria. In this case, the access right can set a management area such as configuration management or error management. Furthermore, access types, for example, passive access or active access, are individually and uniquely set. Such a rights profile criterion is created, for example, by a separate automatic table for each type of network device to be written, and has columns for all classes of managed objects, for which the instantaneous network device has a master database. Manage. That is, for the base station controller, all classes of managed objects related to functions inside the base station subsystem and all classes of managed objects related to hardware specific to the base station controller, For stations, all classes of managed objects related to base station specific hardware, and for transcoder and rate adapter devices, managed objects related to hardware related to this device. All classes. All commands are listed in the command column of the automatic table based on the rights profile. All these commands relate to the instantaneous class of the managed object. These two columns are created automatically, so that each of these two columns is complete. Yet another column indicating the validity of an individual command is blank in the normal state. In this column, the individual commands of the individual classes of the managed object are entered as commands, each of which has been granted access rights as needed by the security operator. In an advantageous embodiment of the LMT access table of the operation and maintenance system according to the invention, an operator of the LMT access table stored in the operation and maintenance system, which is entitled to access the operation and maintenance system by the LMT maintenance device. Each of the operator data sets includes valid date information or valid period end date information. This ensures that access rights whose date information has not been extended are forcibly revoked by the security operator. In an embodiment of the operation and maintenance system of the present invention, the operator data set of the operator of the LMT access table stored in the operation and maintenance center, which is entitled to access the operation and maintenance system by the LMT maintenance device, respectively, Information is included whether this operator may change its operator password with an LMT maintenance device connected to the network equipment of the base station subsystem of the mobile radio network. Such an entry is meaningful, for example, when one password must be used for a plurality of operators. In this case, individual operators should not be able to change this password. It is recommended that changes be made only in this case by the operations and maintenance center security operators. In an embodiment of the operation and maintenance system of the present invention, the operator data set of the operator of the LMT access table stored in the operation and maintenance center, which is entitled to access the operation and maintenance system by the LMT maintenance device, includes: Each contains information on what type of network device the operator is granted access to. In a particular embodiment of this aspect of the invention, the operator data set entitled to access the operation and maintenance system by the LMT maintenance device includes, respectively, any physical device of the type of network device. On the other hand, information on whether the operator has been given an access right is included. This allows certain operators access to totally special network equipment. However, access to other network devices of the same type is prohibited. Next, the present invention will be described in detail based on embodiments with reference to the drawings. FIG. 1 shows the parts of a mobile radio network relevant to the invention. FIG. 2 shows the LMT access logon process associated with individual network elements. 3 and 4 show a process of changing an operator password by an operator of the LMT maintenance device operated in the BSC remote control mode or directly in the base station controller. FIG. 1 shows three radio base stations BTSE and three base station controllers BSC each having a transcoder and a rate adapter unit TRAU as part of the base station subsystem. A maintenance device LMT is shown as an example in each area of the individually illustrated base station controller BSC. The maintenance device LMT is connected to the base station control unit BSC via the interface Tint. Furthermore, a maintenance device LMTr is shown, which is connected to the transcoder and the rate adapter device TRAU via an interface Tint. Further, a maintenance device LMTr is shown, and the maintenance device LMTr is connected to the radio base station BTSE of each base station control unit BSC via an interface Tint. The reference LMTr indicates, in contrast to the reference LMT, that the corresponding maintenance device accesses the base station controller BSC in the remote control mode, which is "remote mode" in English. Each of the three base station controllers BSC shown in FIG. 1 is coupled to an operation and maintenance center OMC via an interface Oint. The operation and maintenance center OMC includes an operation and maintenance device OMT, a control unit OS of the present invention, and a memory SP having an LMT access table TB. As shown in the base station controller BSC of FIG. 1, each of these base station controllers includes an LMT access table TB. The BTSE table portion of the LMT access table TB included in each base station BTSE and the TR AU table portion of the LMT access table TB included in each transcoder and the rate adapter device TRAU are not shown in detail in FIG. The above-mentioned table part or LMT access table is, of course, stored non-volatilely in the individual network elements, for example in a disk storage device or in a programmable electronic non-volatile memory. The LMT access table included in the operation and maintenance system illustrated in FIG. 1 is created by a security operator, for example, a system administrator or an operator in charge of global security of this operation and maintenance system, at the operation and maintenance center OMC via the maintenance device OMT. You. This is done by the operator creating an operator data set for each authorized LMT operator or for each LMT operator group. This operator data set comprises in this embodiment the user's identity information, which may consist of a possibly generically set user name. The identity information further includes an operator password, which is encrypted at the operation and maintenance center OMC by a method described further below and then stored in the operator data set. In addition, the operator data set includes the expiration date, ie the date from which the LMT operator's access is no longer valid. Further, information "user-changeable" is included. This information "user changeable" indicates whether the operator password can be changed by the LMT operator himself or only by the operation and maintenance center OMC. Further, the operator dataset contains information regarding the network device type. This information defines the network device type or network device type for which LMT operator access is allowed. Possible values for this are BSC in local or remote control mode, BTSE in local mode and TRAU in local mode. Further, the operator data set includes network device information defining physical network devices of a pre-approved network device type to which LMT operator access is permitted. Possible values for this are “all” for all instances of the managed object corresponding to the allowed network device type, or individual values of a given network device type within the base station subsystem area. A "set of values" that defines a network device instance. In this case, different access areas can be defined, especially in the BSC remote control mode. In addition, each operator dataset contains rights profile criteria. The rights profile criteria include a pointer to a rights profile specific to the corresponding LMT operator or LMT operator group. The security operator assigns a unique set of rights to each LMT operator at the operations and maintenance center OMC. This unique set of rights is called a rights profile criterion. This right, on the one hand, sets the management area, which can be managed by the corresponding LMT operator. Examples of this are configuration management or error management. In addition, this right sets the access set, whether passive access like GET or active access like SET, DELETE or CREATE is allowed. In this case, the definition of the rights profile criteria is in this embodiment performed by an automatic table having three columns (or rows) separately for each network device type. All of these columns (or rows) are set automatically, and only one of these columns (or rows) can be controlled by the security operator. The columns (or rows) list all classes of managed objects, and for each class of managed objects the corresponding network device type includes a portion of the master database, ie, the LMT access table. This is the entire class of managed objects related to functions inside the base station subsystem for the base station controller BSC, and the managed objects related to base station specific hardware for the base station BTSE. All classes of objects, and for a transcoder and rate adapter device TRAU, all classes of managed objects associated with the hardware associated with this transcoder and rate adapter device TRAU. Yet another column (or row) contains a list of all commands. All of the commands are associated with each class of managed object described in the aforementioned column or row. The third column (or row) contains information about the validity of the right. This column (or row) is a number of columns (or rows) that can be changed by the security operator. The value automatically entered in this column is "invalid" or (blank). The security operator can enter the rights assigned to the LMT operator in this column (or row) as "valid". After the last listed column has been updated, this table is stored in the Operations and Maintenance Center OMC as a rights profile criterion and is used in defining the aforementioned operator dataset. In the embodiment described herein, the following security-related activities take place at the operations and maintenance center: Creation of rights profiles. Creating an operator dataset with an encrypted operator password. Formation and storage of at least one LMT access table. The LMT access table includes a BSC table portion for accessing the base station controller BSC, a BTSE table portion for accessing the base station BTSE, and a data set for LMT access to the transcoder and the rate adapter device. It has a TR AU table part. Transmission of the LMT access table, that is, the LMT access table of the BSC table portion, the BTSE table portion, and the TRAU table portion to all the base station controllers BSC. In the base station controller BSC, the entire LMT access table is stored in the hard disk. The BTSE table portion is transmitted to all base stations BTSE, and the TRAU table portion is transmitted to all transcoders and rate adapter devices TRAU. In each base station BTSE, the BTSE table portion of the LMT access table is stored in the nonvolatile memory area. In each transcoder and rate adapter device TRAU, the TRAU table portion of the LMT access table is stored in the nonvolatile memory area. The encrypted LMT operator password uses up to 128-bit operator password entered in clear text using 64-bit secret information unique to each network device type at the operation and maintenance center OMC. And up to 128 bits long including the operator name. The hash function MD5 (T. I. S) is calculated. The first 64 bits of the encryption result are used in the operator dataset as the operator password. All operator data sets for network devices created at the operation and maintenance center form the table part of the LMT access table, ie the BSC table part, the BTSE table part or the TRAU table part. The BSC table portion is effective for LMT access to the base station control unit BSC in both the local mode and the remote control mode of the LMT maintenance devices LMT and LMTr. The base station controller BSC also contains a BTSE table part and a TRAU table part to ensure that the mobile radio network continues to function in the event of a failure of the operation and maintenance system OMC or the interface Oint to the operation and maintenance OMC. Have been. In order to access the operation and maintenance system of the mobile radio network via the LMT maintenance device, the operator has to log on to the operation and maintenance system via the LMT maintenance device LMT, LMTr. The corresponding process is then called LMT login and the operator enters the following login parameters: eg his name, user identifier such as his user password and information on the operating mode of the LMT maintenance devices LMT, LMTr. Enter The LMT operation mode may be a local mode or a remote control mode. Next, security management of the operation and maintenance system according to the embodiment of the present invention for the case of LMT access when the LMT maintenance device is in the local mode will be described. In this case, the LMT maintenance devices LMT and LMTr are operated by three different network devices, that is, the base station controller BSC, the base station BTSE or the transcoder and the rate adapter device TRAU. Therefore, if the concept of a network device is used when accessing the LMT maintenance device in the local mode in connection with the security management procedure described herein, either the base station controller BSC or the base station BTSE or the transcoder and The rate adapter device TRAU is meant. In the first step, the operator inputs login parameters. At this time, "local mode" is input as the operation mode of the LMT maintenance devices LMT and LMTr. Still another parameter is “user ID”, ie, the above-mentioned user identity information (name), and further “password”, ie, user password. In the next step, the control unit of the LMT maintenance device LMT, LMTr generates a message having these parameters, the user ID, the local mode, and the password, and transmits the message to the local network device. LMT maintenance devices LMT and LMTr are connected to this local network device. The network device searches for a corresponding operator data set in the table part of the LMC access table TB for this network device based on the parameters and the user ID. Next, the control unit of the network device checks whether the entry “validity end date” of the operator data set is larger than the current date. If yes, that is, if the operator data set is still valid, the control unit of this network device inputs the secret information concealed inside the software of the control unit of this network device into the LMT maintenance devices LMT and LMTr in clear text by the operator. The hash function MD5 (T. I. S) is calculated. The first 64 bits of the calculated hash function are compared with the operator password contained in the operator data set of the LMT access table part. If they match, the network device sends a login confirmation to the LMT maintenance devices LMT, LMTr. In an embodiment of this example, the expiration date information generally relates to access by the previous operator password, irrespective of access by this operator, and furthermore, the operator data set includes the operator's own operator password. Is included, the old password whose validity period has expired is encrypted and intermediately stored as the old password. Based on this, the control unit of the network device requests the operator of the LMT maintenance device LMT, LMTr to change his / her own password. If the comparison between the operator password encrypted in the network device and the operator password encrypted in the operator data set does not match, the login attempt is rejected and the network device to the LMT maintenance device LMT, LMTr Interface Tint remains blocked. Regardless of whether the login attempt is successful or not, the network device is ISO / IEC10164. 7 or ITU-T Rec. X. A security alarm message according to 736 is generated, which is transmitted to the operation and maintenance center OMC via the interface Oint. This message is temporarily stored in the network device and remains in the buffer memory until the communication with the operation and maintenance center OMC is processed normally or until the confirmation from the operation and maintenance center OMC is received. During the initial installation of the network device, i.e. the installation at this location by the LMT maintenance device, the operator data set does not yet exist on this network device. Therefore, in this case, the operator logs in with the default password. This default password is, for example, fixedly stored in the EPROM of the network device, and is known to the LMT maintenance device operator. The minimum rights profile criteria assigned to this default password only allows the operator to enter configuration commands via the LMT maintenance devices LMT, LMTr. These configuration commands are necessary for starting operation of the network device. Next, referring to FIG. 2, the login process Login for accessing the base station control unit BSC of the operator by the LMT maintenance device of the transcoder and the rate adapter device TRAU in the base station BTSE or the BSC remote control mode BSC will be described. . To this end, the operator has his own identifier "user ID", his own operator password "password" and his LMT operation at the LMT maintenance device LMTr connected to either the base station BTSE or the transcoder and the rate adapter device TRAU. Enter the mode "BSC remote control mode". The control unit of the LMT maintenance device LMTr generates a message according to these parameters and transmits this message to the local network device, that is, the base station BTSE or the transcoder and the rate adapter device TRAU. In this message, the operator password is included in plain text. To prevent this password from being transmitted unencrypted over a relatively long Abis or Asub section, the control of the local network device BTSE or TRAU is included in the software of this network device. Has a hash function MD5 (T.1) based on valid secret information, a password, and identity information user ID. I. S) is formed. Further, the identity information user ID is stored in the network device BTSE or TRAU. Based on this, the local network device forwards a login message with the user ID and the encrypted password to the base station controller BSC. The base station controller BSC checks the validity of the password and identifies the user, and uses the same algorithm as the above-described login process in the local mode. The base station controller BSC then sends an acknowledgment or a negative acknowledgment message to the network device BTSE or TRAU. The log-in method is executed via the network device BTSE or TRAU. The network device BTSE or TRAU records the response message and transmits the response message to the LMT device. In this figure, the transmission of the acknowledgment message login OK is illustrated. In addition, the base station controller BSC generates a security alarm message as described above during the login process in the local mode. This security alarm message is transmitted to the operation and maintenance center OMC and stored there. The last step is not shown in FIG. 2 is limited to the relationship between the LMT maintenance device LMTr, the network device and the base station controller BSC. There are several ways to prevent the operator from accessing the operation and maintenance system of the mobile radio network via the LMT maintenance devices LMT, LMTr. One method is for the security operator of the operation and maintenance center OMC to set the parameter "validity end date" in the operator dataset assigned to this operator to the date on which the validity period has already expired. In this case, the security operator must further ensure that the LMT operator, whose operator access must be blocked in the future, will not be entitled to change the password. If the corresponding rights have been entered in the operator dataset, the security operator must therefore also change such entries to "no rights". This method is particularly suitable for temporarily blocking operator access. This is because the other data of the operator data set is kept. However, the security operator can also delete the entire operator data set in the LMT access table. As a result, the operator or operator group is decisively blocked. If a shared password of a plurality of operators of an operator group is used and there is a risk that this password will be known by an unauthorized person, the security operator changes the operator password in the corresponding operator data set. This will prevent access by this password for the future. Regardless of how operator access is blocked, the instantaneous LMT access table is transmitted to each instance of the instantaneous network device type after a change of entry by the security operator at the operation and maintenance center OMC. It does not disappear. The operation and maintenance center OMC generates a security alarm message similar to the security alarm message described above in connection with the login process. If the operator has been given the right to change his own password, he does this by means of the LMT maintenance devices LMT, LMTr accessing the base station controller BSC. Next, with reference to FIGS. 3 and 4, the change of the password of the LMT operator is described. Each network device has an instance of a managed object "LMT access" having the attribute "LMT password". This attribute "LMT password" is used to generate the message AttributeValueChangedNotification. (For example, ISU / IEC10164-1 or ITU-T Rec. X. Although this message AttributeValueChangedNotification is indicated by AVCN in FIGS. 3 and 4, this message AttributeValueChangedNotification is sent to the operations and maintenance center OMC in a mode waiting for confirmation. After a successful login process Login, the LMT operator enters his new password for the instantaneous LMT mode of operation with the command "Change Password". If your old password has been revoked and the user has been given the right to change the password in the user data set of the LMT access table, such a change of his password is implicit to the LMT operator. It is possible within. After inputting the command "Change Password" to the LMT maintenance device LMT, LMTr, the control unit of the LMT maintenance device LMT, LMTr generates a message "SET" having a new password, which is first transmitted to the local network device. , For example, to the base station controller BSC, the base station BTSE or the transcoder and the rate adapter device TRAU. This message "SET" is transmitted via the T interface T-INTERFACE. The subsequent course of the password change process depends, inter alia, on the operating mode of the LMT maintenance devices LMT, LMTr. Accordingly, first, the progress of the case where the LMT maintenance device LMTr accesses the base station control unit BSC via the base station BTSE or the transcoder and the rate adapter device TRAU in the BSC remote control mode will be described. This process is illustrated in FIG. Next, the difference in the password change process when the LMT maintenance device LMT is connected to the base station control unit BSC via the T interface T-INTERFACE in the local mode is illustrated. In the case of FIG. 3, in addition to the command "Change Password" (not shown), the operator inputs his / her identifier user ID, his / her own password in plain text, and the BSC remote control mode as the mode. As described above, based on these, the control unit of the LMT maintenance device LMTr transmits a message “SET” having a plaintext password to the network device BTSE / TRAU via the T interface T-INTERFACE, and the network device BTSE / TRAU. Access the base station controller BSC in the BSC remote control mode via the TRAU. In the network device BTSE / TRAU, the control unit of the network device BTSE / TRAU calculates a hash function based on secret information included in software of the network device BTSE / TRAU, a new password, and an operator name user ID stored in a login process. . The first 64 bits of this calculation result are transmitted as a newly encrypted password to the base station controller BSC, where it is assigned to the attribute "LMT password" if it can be changed by the user and is still valid. Can be An instance of a managed object LMT access generates an AttributeValueChangedNotification AVCN. This AttributeValueChangedNotification AVCN is transmitted to the base station control unit BSC via the Abis / Asub interface Abis / Asub-INTERFACE, and is transparently transmitted from here to the operation and maintenance system OMC via the O interface O-INTERFACE. Using the value "Old Attribute Value" stored during the login process Login corresponding to the old password, the control unit in the operation and maintenance center OMC stores the instantaneous operator data set in the LMT access table. Find and replace the value "password" with the new value "LMT password". The operation and maintenance center OMC then causes the changed LMT access table to be transmitted to all base station controllers BSC. The corresponding command is transmitted to the base station controller BSC via the O-interface O-INTERFACE. In the base station controller BSC, the LMT access table is updated. Further, this command is transmitted to the network device BTSE / TRAU via the Abis / Asub interface Abis / Asub-INTERFACE, and the LMT access table is similarly updated in the network device BTSE / TR AU. The network device BTSE / TRAU transmits a confirmation message to the LMT maintenance device LMTr via the T interface T-INTERFACE. This new password is only valid when the confirmation message of the operation and maintenance center OMC has been transmitted to the LMT maintenance device LMTr. This ensures that new passwords from the operation and maintenance center OMC are updated in all mobile radio networks. In the embodiment of FIG. 3, since the LMT maintenance device LMTr is operated in the BSC remote control mode, the network device BTSE / TRAU, which may be a base station BTSE or a transcoder and a rate adapter device TRAU, has a secret for encrypting the password. You have to use information. This secret information is assigned to the network device type base station controller BSC. Next, the same process when the LMT maintenance device LMT is connected to the base station control unit BSC in the local mode will be described with reference to FIG. In this case, only the differences from the progress described with reference to FIG. 3 will be described. A local mode is input as mode information in addition to a user ID and a password input in plain text as operator input. Based on this, the message "SET" with the plaintext password is transmitted directly to the base station controller BSC via the T-interface T-INTERFACE. In this case, in the base station controller BSC, the same process takes place as described in connection with the network device BTSE / TRAU in FIG. In this case, the AttributeValueChangedNotification AVCN output from the base station control unit BSC is directly transmitted to the operation and maintenance center OMC via the O-interface O-INTERFACE. The other steps are the same as in the previous example. In the example of FIGS. 3 and 4, a security alarm report is generated and stored in the operation and maintenance center OMC. The above instance of the managed object "LMT access" having the attribute "LMT password" is in this embodiment an instance of the managed object associated with the hardware for each base station BTSE and each transcoder and rate adapter unit TRAU. And exists in each base station controller BSC as an instance of a managed object related to the function. Due to this very limited function, the instance of the managed object associated with the function in each base station controller BSC is also called a dummy instance. Whenever security-critical data for LMT access is changed, ie, for example, by a security operator at the operation and maintenance center OMC or by a password change by the LMT operator itself, all network element instances The corresponding LMT access table must be updated centrally by the operation and maintenance center OMC. To this end, the operation and maintenance center OMC manages a table with all base station controllers BSC that do not have the instantaneous state of the LMT access table. This can occur, for example, due to a failure of the O interface O-INTERFACE, an internal error in the base station control unit BSC, and the like. As soon as the communication between the operation and maintenance center OMC and the base station controller BSC is respectively restored, the changed LMT access table is automatically transmitted in this case to the base station controller BSC. In addition, each base station BSC manages a table of all base station controllers BTSE and all transcoders and rate adapter units TRAU which do not have the instantaneous state of the BTSE table part or the instantaneous state of the TRAU table part, respectively. As soon as the communication via the Abis or Asub interface is restored, the instantaneous LMT access table or BTSE table part or TRAU table part is transferred to these BTSE instances of the base station or the TRAU instances of the transcoder and the rate adapter device. Automatically transmitted. In the described embodiment of the operation and maintenance system, an emergency action is additionally provided. In this emergency operation, even in the operation of the network without the operation and maintenance center OMC, security-critical data for LMT access can be limited to the base station subsystem area. In this case, this change is changed by the security operator via the LMT maintenance device LMT connected to the base station controller BSC. To this end, the part of the LMT access table TB stored in the base station BSC contains a special operator data set for security operators. After the security operator has logged in with the password contained in this special operator data set, he accesses all the table parts of the LMT access table TB stored in the base station controller BSC to access the individual operator data sets. Can be changed. After this, the modified LMT access table TB or BTSE table part and TRAU table part are transmitted to all the connected base stations BTSE and transcoder and rate adapter unit TRAU, where they are stored. The security operator must also input the changed LMT access table TB to the operation and maintenance center OMC. As a result, as soon as the operation and maintenance center OMC becomes operational again, an automatic update is performed throughout the mobile radio network.

────────────────────────────────────────────────── ─── [Continuation of summary] And base station subsystem network equipment (BSC, LMT access table in BTSE, TRAU) (TB) at least a portion of the non-volatile memory Operation and maintenance center (O MC), and the base station subsystem Network equipment (BSC, BTSE, TRAU) LMT maintenance devices (LMT, LMTr) Needed for access by.

Claims (1)

[Claims] 1. Operation and maintenance system for mobile wireless networks So,     Network configuration is centrally operated and maintained Performed by the maintenance equipment (OMT) of the On the side, the maintenance is performed by LMT maintenance devices (LMT, LMTr). The MT maintenance device (LMT, LMTr) is a base of the mobile radio network. Connected to the network equipment (BSC, BTSE, TRAU) of the station subsystem Operation and maintenance system for mobile wireless networks And     LMT stored in the Operation and Maintenance Center (OMC) Access table (TB), and the LMT access table (TB) Operation and maintenance by T maintenance equipment (LMT, LMTr) Name entry for each operator authorized to access the nonce system. Operator dataset with birds, LMT maintainer by said operator A unique source used to access via a sense device (LMT, LMTr). The password of the operator and the access rights of the operator Every time Information about     The management of the LMT access table (TB) and the base station subsystem LMT in a network device of a system (BSC, BTSE, TRAU) Activation of the non-volatile storage of at least a part of each of the access tables (TB) Control unit at the operation and maintenance center (OMC) And the base station subsystem communicates with the network equipment (BSC, BTSE, TR). AU) through the LMT maintenance device (LMT, LMTr). For mobile radio networks characterized by the need for Show maintenance system. 2. LMT access stored in the operation and maintenance center (OMC) Access table (TB) for LMT access via the base station controller (BSC) BSC table portion with an operator data set of B with operator data set for LMT access via BTSE) Includes SC table part, transcoder and rate adapter unit (TRAU) With operator data set for LMT access via the The operation and maintenance of claim 1 including a cable portion. System. 3. The control unit of the operation and maintenance center (OMC) Of the LTM access table (TB) in the base station controller (BSC) of the system Activate the non-volatile storage of the BSC table portion and use the LM in the base station (BTSE). Activate the nonvolatile storage of the BTSE table portion of the T access table and Of the LMT access table in the coder and rate adapter unit (TRAU) 3. The non-volatile storage of the TRAU table portion is activated. Operation and maintenance system. 4. In addition, the operation and maintenance center (OMC) controls are The LTM access table in the base station controller (BSC) of the base station subsystem Activating the non-volatile storage of the BTSE table part and the TRAU table part The operation and maintenance system according to claim 3, wherein: 5. The operator passwords (Passwords) are encrypted and LMT 5. The storage device according to claim 1, wherein the information is stored in an access table (TB). The operation and maintenance system according to claim 1. 6. Network equipment (BSC, BTSE, TRAU) is encrypted by the operator. Entered without encoding For encrypting and encrypting the operator password (Password) Operator password stored in the LMT access table and the encryption result And a control unit for comparing the network devices (BSC, BTSE, TR AU) through the LMT maintenance device. The operation and maintenance system according to claim 5, characterized in that: 7. Is the control part of the operation and maintenance center (OMC) secret information? Password and password entered in plain text and password From the identity information (UserID) including the name of the The encryption stored in the LMT access table by forming a number Characterized in that it is provided to generate a set operator password The operation and maintenance system according to claim 5 or 6. 8. Is the control part of the operation and maintenance center (OMC) secret information? Password and password entered in plain text and password From the identity information (UserID) including the name of the By forming the numbers, the BSC table part and the LTM access table ( TB) like TRAU table part Encrypted addresses stored in the network device type specific table portion 6. The apparatus according to claim 5, wherein the apparatus is provided for generating a perlator password. Or the operation and maintenance system according to 6. 9. Enter the operator password (Password) entered in plain text into the network. Password entered from the secret information specific to the device type and in the clear Password) and identity information including the operator's name ( UserID) to form a hash function to enter in plaintext Network device to encrypt the password (Password) (BSC, BTSE, TRAU) control unit is provided. The operation and maintenance system according to claim 6 or 8. 10. Each network device (BSC, BTSE, TRAU) is installed A memory having information on passwords and the degree of access rights. The access right gives the operator the configuration necessary to start the operation of the network device. 10. An input of a translation command is permitted. The operation and maintenance system according to claim 1. 11. Manages the tables of all base station controllers (BSC) Operation and maintenance center (OMC) control unit , The LMT address caused by the update in all the base station controllers (BSC). Access table (TB) has been interrupted since the non-volatile storage of at least a part of the If you do not perform the corresponding memory process,     In order to activate this storage process if it has been identified that said obstruction has disappeared The said control part of the said center (OMC) is provided. The operation and maintenance system according to claim 1. 12. All base stations (BTSE) and transcoders assigned to the table and Base station system for managing each table of rate adapter unit (TRAU) Control section (BSC), and all base stations (BTs) assigned to the table. SE) and transcoders and rate adapter units (TRAU). Non-volatility of at least a part of the LMT access table (TB) due to the update If there is a spontaneous memory, do not perform the corresponding memory process,     In order to activate this storage process if it has been identified that said obstruction has disappeared All base stations (BTSEs) and transcoders assigned to the table of Rate adapter device (TRAU) table Having the control unit of the base station control unit (BSC) for managing each; The operation and maintenance system according to claim 11, characterized in that: 13. At least a part of the LMT access table stored in the base station control unit includes: LMT maintenance device (LMT, LMTr) by security operator Unique security password and access used for access through A special security operator dataset with information on the This includes networks without an Operation and Maintenance Center (OMC). The LMT access table inside the base station subsystem (TB )) To allow access to the operator dataset Operation and maintenance according to one of the preceding claims, characterized in that: system. 14． A control unit for a network device (BSC, BTSE, TRAU); LMT maintenance via network equipment (BSC, BTSE, TRAU) The operator of the operator by the operator by the device (LMT, LMTr) The password is changed and the network device (BSC, BTSE, TRAU) Of the changed operator password in the LMT access table of the system Memory is an operation Until the operation and maintenance center (OMC) is activated, The network for preventing access by the changed operator password. Network device (BSC, BTSE, TRAU) The operation and maintenance system according to one of claims 1 to 13. Tem. 15. It has a control unit for a network device (BSC, BTSE, TRAU),     Password received in clear text by the LMT maintenance device (LMTr) (Password) is encrypted and transmitted to the base station controller (BSC). To the base station via the network device (BSC, BTSE, TRAU) The LMT maintenance device (LMTr) operated in the station control unit remote control mode. Enter the operator password (Password) to enter 2. An operator accesses while figuring out. 5. The operation and maintenance system according to one of the four items. 16. Information on the level of access rights for each operator is managed For security operators, access types to individual classes of objects Therefore, they are stored in the form of rights profile criteria with individually set rights. Is characterized by An operation and maintenance system according to any one of claims 1 to 15. M 17． Operation by LMT maintenance device (LMT, LMTr) and Said operations and rights granted access to the maintenance system Of the LMT access table (TB) stored in the maintenance system Data operator data sets each include effective date information An operation and maintenance system according to claim 1. 18. Operation by LMT maintenance device (LMT, LMTr) and Operations and menus entitled to access the maintenance system Operator of the LMT access table stored in the maintenance center (OMC) Operator data sets, respectively, Base station subsystem network equipment (BSC, BTSE, TRAU) The operation is performed by the connected LMT maintenance devices (LMT, LMTr). Claims information including information as to whether or not the operator password can be changed. 18. The operation and maintenance system according to any one of 1 to 17. 19. Operation by LMT maintenance device (LMT, LMTr) and To maintenance system Operations and Maintenance Center (OM) Operator data set of the operator of the LMT access table stored in C) Each type of network device (BSC, STSE, TSE) RAU) to include information on whether the operator has been granted access Operation and maintenance according to one of the preceding claims, characterized in that: Nonce system. 20. Operation by LMT maintenance device (LMT, LMTr) and Operations and menus entitled to access the maintenance system Operator of the LMT access table stored in the maintenance center (OMC) The operator data sets of the network devices (BSC, STSE , TRAU) type for each physical device 20. The method according to claim 19, further comprising information as to whether or not the access right is granted. Operation and maintenance system.